Cisco Catalyst 6500 Series Command Reference Manual page 73

Ssl services module command reference

Hide thumbs Also See for Catalyst 6500 Series:

Software configuration manual (570 pages)

Configuration manual (392 pages)

Configuration note (212 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

page of 160

/ 160
Contents
Table of Contents
Bookmarks

Table of Contents

Chapter 2

Commands for the Catalyst 6500 Series SSL Services Module

Table 2-5

Proxy-policy TCP Configuration Submode Command Descriptions (continued)

Syntax

[no] timeout reassembly time

[no] tos carryover

Usage Guidelines

TCP commands that you enter on the SSL Services Module can apply either globally or to a particular

proxy server.

You can configure a different maximum segment size for the client side and the server side of the proxy

server.

The TCP policy template allows you to define parameters that are associated with the TCP stack.

You can either enter the no form of the command or use the default keyword to return to the default

setting.

Examples

This example shows how to enter the proxy-policy TCP configuration submode:

ssl-proxy(config)# ssl-proxy context s1

ssl-proxy(config-context)# ssl-proxy policy tcp tcppl1

ssl-proxy(config-ctx-tcp-policy)#

These examples show how to set a given command to its default value:

ssl-proxy (config-ctx-tcp-policy)# default timeout fin-wait

ssl-proxy (config-ctx-tcp-policy)# default inactivity-timeout

ssl-proxy (config-ctx-tcp-policy)# default buffer-share rx

ssl-proxy (config-ctx-tcp-policy)# default buffer-share tx

ssl-proxy (config-ctx-tcp-policy)# default mss

ssl-proxy (config-ctx-tcp-policy)# default timeout syn

ssl-proxy (config-ctx-tcp-policy)#

This example shows how to define the FIN-wait timeout in seconds:

ssl-proxy (config-ctx-tcp-policy)# timeout fin-wait 200

ssl-proxy (config-ctx-tcp-policy)#

This example shows how to define the inactivity timeout in seconds:

ssl-proxy (config-ctx-tcp-policy)# timeout inactivity 300

ssl-proxy (config-ctx-tcp-policy)#

OL-9105-01

Description

Allows you to configure the amount of time in seconds before the

reassembly queue is cleared; valid values are from 0 to 960 seconds

(0 = disabled). If the transaction is not complete within the specified time,

the reassembly queue is cleared and the connection is dropped. Use the no

form of this command to return to the default setting.

Forwards the type of service (ToS) value to all packets within a flow.

Note

If the policy is configured as a server TCP policy, the ToS value is

sent from the server to the client. If the policy is configured as a

virtual policy, the ToS value is sent from the client to the server.

Note

The ToS value needs to be learned before it can be propagated. For

example, when a ToS value is configured to be propagated from the

server to client connection, the server connection must be

established before the value is learned and propagated. Therefore,

some of the initial packets will not carry the ToS value.

Catalyst 6500 Series Switch SSL Services Module Command Reference

policy tcp

2-47

Table of Contents

Cisco Catalyst 6500 Series Command Reference Manual page 73

Related Manuals for Cisco Catalyst 6500 Series

Related Products for Cisco Catalyst 6500 Series

Table of Contents